From: Dietmar Maurer <dietmar@proxmox.com>
Date: Wed, 31 Dec 2014 16:28:33 +0000 (+0100)
Subject: Daemon: untaint value read from ENV
X-Git-Url: https://git.proxmox.com/?p=pve-common.git;a=commitdiff_plain;h=7db2b94082ae5241b94a9f23d526a44737014bd1

Daemon: untaint value read from ENV
---

diff --git a/data/PVE/Daemon.pm b/data/PVE/Daemon.pm
index 3d21401..b671453 100644
--- a/data/PVE/Daemon.pm
+++ b/data/PVE/Daemon.pm
@@ -366,6 +366,11 @@ sub new {
 	my $lockfd = $ENV{PVE_DAEMON_LOCK_FD};
 	delete $ENV{PVE_DAEMON_LOCK_FD};
 
+	if (defined($lockfd)) {
+	    $lockfd =~ m/^(\d+)$/;
+	    $lockfd = $1; # untaint
+	}
+
 	die "please run as root\n" if !$restart && ($> != 0);
 
 	die "can't create more that one PVE::Daemon" if $daemon_initialized;